- From: Firstyear via GitHub <sysbot+gh@w3.org>
- Date: Thu, 12 Jan 2023 01:14:39 +0000
- To: public-webauthn@w3.org
> How could an rp use credprops to determine the flow prior to even knowing who signs in? > > The autofill ui imo seems the best compromise as you can fill in a username if you have a remote credential, and can go onto autofill for rk. You register "an authenticator" with rk=preferred/discouraged. Lets assume an iphone makes rk=true, and a yubikey rk=false. You can check with credProps and store this flag if you want. When the user goes to authenticate the username prompt is offered with conditional ui. If an rk is available the autofill works and the user logs in with their iphone. If an rk is not available the user types in their username, clicks "login" and then you present the class list of credential ID's and the user can auth with their iphone OR their yubikey. -- GitHub Notification of comment by Firstyear Please view or discuss this issue at https://github.com/w3c/webauthn/issues/1822#issuecomment-1379685139 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Thursday, 12 January 2023 01:14:41 UTC